VIRY.CZ

Dobrý den prosím o kontrolu logu FRST padá rychlost internetového připojení.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020
Ran by rewko (administrator) on DESKTOP-QF3F7F4 (Micro-Star International Co., Ltd. MS-7B48) (13-02-2020 08:52:47)
Running from C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Loaded Profiles: rewko (Available Profiles: rewko)
Platform: Windows 10 Pro Version 1909 18363.592 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsorsp64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\FsPisces.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulprothoster.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(GOG Sp. z o.o. -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\rewko\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\APP Manager\AppManager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe
(Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [APP Manager] => C:\Program Files (x86)\MSI\APP Manager\AppManager.exe [3705520 2019-05-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-06-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [X_Boost] => C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe [4260000 2018-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26292912 2020-01-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3137808 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36098448 2020-02-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3311568 2020-01-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [launchOnStartup] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13186120 2019-12-29] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\RunOnce: [Application Restart #2] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.100\Installer\chrmstp.exe [2020-02-11] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07450C28-6721-48EE-A52C-AD96326E5849} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1068688 2019-08-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {1B333883-02A8-4C2A-9855-DDE8251A800D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {233D7998-23D3-45FC-9EAA-F8A9867CAD33} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {26C40013-35A5-4A63-ABB1-46CF48181851} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {374FE778-7CEC-4B62-AB84-167790489BA3} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\IntelPTTEKRecertification.exe [938768 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {4CF4388A-7DF3-4D08-BBDB-857D95C3206D} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {644EC0E1-2924-4BA9-ADA0-281BAF8B24CA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BEFCEC5-E257-4B6E-8306-B380AF3D2C68} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {72F01EF0-A015-4A06-B9AA-EC6DD61D6EDA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A71C56C9-676D-48B7-956E-9DD6527BD53C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ABC08BA4-A1D6-4F2A-A72C-8578C943293E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
"C:\Windows\System32\Tasks\Intel\Intel Telemetry 2 (x86)" was unlocked. <==== ATTENTION
Task: {AC1D535C-A2AE-4EA1-BBD2-F0C1A01599D0} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {AF7AF81B-D988-402D-8D88-AAB1A3797E7E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C08AA499-FD9D-4AD1-9782-D64D48875012} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\F-Secure\SAFE\fs_hotfix.exe [280464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
Task: {D8D57FCA-48E8-4C4A-98D3-DB527A3C1AB1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E7AA5E24-C07F-4F7C-A38E-C9137E29F2FE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F78046A1-578B-4AD6-9574-EDA6D5863F9C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{35c8ea1d-39f7-4e26-a0d9-f3bae6f80935}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{4c1c4675-98dc-48ce-8325-a7cc3d28333a}: [DhcpNameServer] 62.129.50.20 85.135.32.100

Internet Explorer:
==================
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_ie_https\fs_ie_https64.dll [2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_ie_https\fs_ie_https.dll [2020-02-12] (F-Secure Corporation -> F-Secure Corporation)

Edge:
======
DownloadDir: C:\Users\rewko\Downloads
Edge Notifications: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> hxxps://www.facebook.com
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-25]

FireFox:
========
FF DefaultProfile: jvgxijac.default
FF ProfilePath: C:\Users\rewko\AppData\Roaming\Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\jvgxijac.default [2019-12-15]
FF NetworkProxy: Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\jvgxijac.default -> type", 0
FF HKLM\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Extension: (Browsing Protection by F-Secure) - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi [2020-02-12]
FF HKLM-x32\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default [2020-02-11]
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.msn.com/?p ... google.com"
CHR Extension: (Prezentace) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-03]
CHR Extension: (Dokumenty) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-03]
CHR Extension: (Disk Google) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-03]
CHR Extension: (YouTube) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-03]
CHR Extension: (Tabulky) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-03]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-02-11]
CHR Extension: (Super Netflix) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\iakpdiefpdniabbekcbofaanjcpjkloe [2020-01-03]
CHR Extension: (Browsing Protection by F-Secure) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-01-03]
CHR Extension: (Netflix Subtitles Automatic (beta)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpgadigdffhcjldfkanacncocacekkie [2020-01-03]
CHR Extension: (OpenSubtitles for Netflix) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcdnnmhalbjbccempnhabdaeilabmdop [2020-01-03]
CHR Extension: (Tomikup Tlačítko) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlpfbleimihijpglffkfgngdlgplkjf [2020-01-03]
CHR Extension: (DotVPN — lepší způsob VPN) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2020-01-03]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2020-02-11]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-01-03]
CHR Extension: (Plugins) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcblfncjaclajmegihojiekebofjcen [2020-01-03]
CHR Extension: (Open in VLC™ (VideoLAN)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhpfgmjcpbdcbmhjbhogflbbmdbomfmb [2020-01-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-03]
CHR Extension: (Gmail) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-11]
CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2020-01-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2020-02-12] (BitRaider LLC -> BitRaider, LLC)
R2 fshoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [216464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [216464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulhoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulnethoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulorsp; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsorsp64.exe [101248 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulprothoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulprothoster.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1582664 2019-12-29] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-06] (GOG Sp. z o.o. -> GOG.com)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2414264 2017-08-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [542016 2018-11-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\SocketHeciServer.exe [876304 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\TPMProvisioningService.exe [806152 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe [648080 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [2668136 2019-12-16] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 LMS; C:\WINDOWS\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [553056 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343600 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2740912 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_AppManager_Service; C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe [2055352 2019-01-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_DPCLTSERVICE; C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [2167440 2019-04-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [113336 2017-12-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2325168 2019-11-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183480 2019-02-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3393848 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [974848 2019-08-17] (Microsoft Windows -> )
S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [290816 2019-10-04] (Microsoft Windows -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11791704 2019-03-18] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XTU3SERVICE; C:\WINDOWS\SysWOW64\XtuService.exe [26416 2019-05-06] (Intel Corporation -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [33832 2019-12-11] (ASUSTeK Computer Inc. -> )
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2020-02-12] (BitRaider -> BitRaider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [136040 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-06-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-06-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 F-Secure Gatekeeper; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulgk.sys [290144 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R1 F-Secure UL HIPS; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshs.sys [103048 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R0 fsbts; C:\WINDOWS\System32\drivers\fsbts.sys [57512 2020-01-03] (F-Secure Corporation -> )
S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [15296 2020-01-03] (Microsoft Windows Early Launch Anti-malware Publisher -> F-Secure Corporation)
R3 fsni; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\fsni64.sys [111472 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [70664 2017-08-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [144528 2018-11-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
U1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. -> )
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2019-03-19] (Microsoft Windows -> Intel Corporation)
R3 NTIOLib_DPC; C:\Program Files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [14288 2017-03-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9e532b5f619dc909\nvlddmkm.sys [23276960 2020-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1141744 2019-04-18] (Realtek Semiconductor Corp. -> Realtek )
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2020-02-04] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 XTUComponent; C:\WINDOWS\System32\drivers\iocbios2.sys [38280 2019-05-06] (Intel Corporation -> Intel Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2019-11-17] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-13 08:52 - 2020-02-13 08:53 - 000000000 ____D C:\FRST
2020-02-13 08:46 - 2020-02-13 08:46 - 000000000 ___HD C:\OneDriveTemp
2020-02-12 17:57 - 2020-02-12 18:22 - 584419276 _____ C:\Users\rewko\Downloads\Fairy Tail - 195 [1080p].mkv
2020-02-12 17:55 - 2020-02-12 17:55 - 000000000 ____D C:\Users\rewko\Documents\HeroBlade Logs
2020-02-12 17:55 - 2020-02-12 17:55 - 000000000 ____D C:\Users\rewko\AppData\Local\SWTOR
2020-02-12 16:18 - 2020-02-12 16:18 - 000000000 ____D C:\Users\Public\Documents\BitRaider
2020-02-12 16:18 - 2020-02-12 16:18 - 000000000 ____D C:\ProgramData\BitRaider
2020-02-12 16:15 - 2020-02-12 16:15 - 000000000 ____D C:\Users\rewko\AppData\Local\SWTORPerf
2020-02-12 16:13 - 2020-02-12 16:13 - 000000689 _____ C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2020-02-12 16:13 - 2020-02-12 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2020-02-12 16:13 - 2020-02-12 16:13 - 000000000 _____ C:\end
2020-02-12 09:32 - 2020-02-12 09:48 - 374803518 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 80 [480p].mkv
2020-02-12 09:31 - 2020-02-12 09:31 - 000037771 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 80 [720p].ass
2020-02-11 14:48 - 2020-02-11 14:53 - 740984058 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 05 [720p].mkv
2020-02-11 14:47 - 2020-02-11 14:47 - 000031178 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_05_720p.ass
2020-02-10 10:52 - 2015-11-04 16:40 - 191158825 _____ C:\Users\rewko\Desktop\Fairy Tail - 157 CZ.mkv
2020-02-09 18:52 - 2020-02-09 19:07 - 741033740 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 05 [720p].mkv
2020-02-09 18:51 - 2020-02-09 19:06 - 754032752 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 18 [720p].mkv
2020-02-08 20:17 - 2020-02-08 20:17 - 000000000 ____D C:\Users\rewko\AppData\Local\GroveFlowers
2020-02-08 20:15 - 2020-02-08 20:15 - 000000223 _____ C:\Users\rewko\Desktop\Grove flowers.url
2020-02-07 17:58 - 2020-02-07 17:58 - 000000137 _____ C:\Users\rewko\Desktop\Ori and the Blind Forest.url
2020-02-07 15:54 - 2020-02-07 15:59 - 589975878 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 05 [720p].mkv
2020-02-07 15:53 - 2020-02-07 15:53 - 000016866 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 05 [720p].ass
2020-02-07 08:11 - 2020-02-07 08:51 - 2924342891 _____ C:\Users\rewko\Downloads\ Star.Trek.Picard.S01E03.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-02-06 14:45 - 2020-02-06 14:52 - 743053440 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 04 [720p].mkv
2020-02-06 14:45 - 2020-02-06 14:45 - 000035074 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_04_720p.ass
2020-02-06 13:14 - 2020-02-06 13:14 - 000034076 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_03_720p.ass
2020-02-06 12:31 - 2020-02-06 12:36 - 743174363 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 03 [720p].mkv
2020-02-06 12:23 - 2020-02-06 12:28 - 743533564 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 02 [720p].mkv
2020-02-06 12:22 - 2020-02-06 12:22 - 000035144 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 02 [720p].ass
2020-02-06 10:03 - 2020-02-06 10:10 - 743547492 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 01 [720p].mkv
2020-02-06 10:02 - 2020-02-06 10:02 - 000031039 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 01 [720p].ass
2020-02-05 11:48 - 2020-02-05 11:48 - 000001472 _____ C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk
2020-02-05 11:48 - 2020-02-05 11:48 - 000001464 _____ C:\Users\rewko\Desktop\NVIDIA GeForce NOW.lnk
2020-02-05 08:56 - 2020-02-05 08:56 - 000000000 ____D C:\Users\rewko\AppData\Roaming\dvdcss
2020-02-05 07:36 - 2020-02-05 07:37 - 737560070 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 79 [720p].mkv
2020-02-05 07:36 - 2020-02-05 07:36 - 000040857 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 79 [720p].ass
2020-02-04 18:11 - 2020-02-04 18:11 - 000038990 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_04_1080p_CZ.ass
2020-02-04 17:16 - 2020-02-04 17:18 - 753528618 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 17 [720p].mkv
2020-02-04 16:50 - 2020-02-04 16:53 - 381426743 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 16 [480p].mkv
2020-02-03 20:32 - 2020-02-03 20:33 - 380742884 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 15 [480p].mkv
2020-02-03 20:30 - 2020-02-03 20:31 - 380952503 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 14 [480p].mkv
2020-02-03 20:07 - 2020-02-03 20:07 - 000033710 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 10 [720p].ass
2020-02-03 17:31 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000450576 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000353160 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-02-03 17:31 - 2020-01-31 00:03 - 011843504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-02-03 17:31 - 2020-01-31 00:03 - 010167544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 017462616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 005384584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 004718792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 002075904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001727320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6444219.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001569160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001490688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6444219.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001485688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001370360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001145776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001064384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000825720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000815120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000685912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000677584 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000660176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000557304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000545112 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 040511408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 035380120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 015031808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-02-02 12:52 - 2020-02-02 12:53 - 592045947 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 04 [720p].mkv
2020-02-02 12:51 - 2020-02-02 12:51 - 000024000 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 04 [720p].ass
2020-02-02 12:47 - 2020-02-02 12:48 - 586278890 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 03 [720p].mkv
2020-02-02 12:47 - 2020-02-02 12:47 - 000025144 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 03 [720p].ass
2020-02-02 12:24 - 2020-02-02 12:25 - 595025198 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 02 [720p].mkv
2020-02-02 12:23 - 2020-02-02 12:23 - 000017069 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 02 [720p].ass
2020-02-02 11:32 - 2020-02-02 11:32 - 000000000 ____D C:\Users\rewko\Downloads\A MILF s Tale 5 (2020)
2020-02-01 19:02 - 2020-02-01 19:05 - 1460501104 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 04 [1080p].mkv
2020-01-31 19:14 - 2020-01-31 19:15 - 584749977 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 01 [720p].mkv
2020-01-31 19:14 - 2020-01-31 19:14 - 000025132 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 01 [720p].ass
2020-01-31 19:12 - 2020-01-31 19:17 - 3076433650 _____ C:\Users\rewko\Downloads\Star.Trek.Picard.S01E02.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-01-30 17:31 - 2020-01-30 17:31 - 000038900 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_03_1080p_CZ.ass
2020-01-28 18:33 - 2020-01-28 18:33 - 000028064 _____ C:\Users\rewko\Downloads\Kuutei Dragons 03.ass
2020-01-28 17:46 - 2020-01-28 17:46 - 000043278 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_02_1080p_CZ (1).ass
2020-01-27 18:19 - 2020-01-27 18:20 - 741666322 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 03 [720p].mkv
2020-01-27 18:12 - 2020-01-27 18:13 - 742348334 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 02 [720p].mkv
2020-01-27 16:22 - 2020-01-27 16:24 - 1458179946 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 01 [1080p].mkv
2020-01-27 16:21 - 2020-01-27 16:21 - 000043531 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_01_1080p_CZ.ass
2020-01-26 18:20 - 2020-01-26 18:22 - 736782545 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 78 [720p].mkv
2020-01-26 18:20 - 2020-01-26 18:20 - 000035919 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 78 [720p].ass
2020-01-26 17:31 - 2020-01-26 17:31 - 000000000 ____D C:\Users\rewko\Downloads\Angela White, Ava Addams, Bridgette B - Chasing That Big D
2020-01-26 15:17 - 2020-02-04 16:34 - 002719256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2020-01-26 15:17 - 2020-02-01 10:34 - 000000000 ____D C:\Users\rewko\Documents\Black Desert
2020-01-26 15:17 - 2020-01-26 15:17 - 000000016 _____ C:\ProgramData\mntemp
2020-01-26 13:58 - 2020-01-26 14:11 - 190906545 _____ C:\Users\rewko\Downloads\Angel.Has.Fallen.2019.1080p.BluRay.CZ.EN.DD.5.1.x264-MTK.mkv
2020-01-25 08:41 - 2020-01-25 08:45 - 3249058554 _____ C:\Users\rewko\Downloads\Star.Trek.Picard.S01E01.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-01-21 15:56 - 2020-01-21 17:09 - 808669205 _____ C:\Users\rewko\Downloads\DC's Legends of Tomorrow S05E00.720p.HDTV.x264-SVA+cz tit.mkv
2020-01-21 15:55 - 2020-01-21 15:55 - 000020246 _____ C:\Users\rewko\Downloads\legends-of-tomorrow-S05E00-hdtv-By-azur58.zip
2020-01-21 15:29 - 2020-01-21 15:29 - 000652371 ____H C:\Users\rewko\Downloads\.d3af212720c2f2024431ce49fae2d9a039c38180.parts
2020-01-21 15:27 - 2020-01-21 15:27 - 000000000 ____D C:\Users\rewko\Downloads\Arrow.S08E08.Crisis.on.Infinite.Earths.Part.Four.720p.AMZN.WEB-DL.DDP5.1.H.264-[TGx]
2020-01-21 11:40 - 2020-01-21 11:41 - 737258580 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 77 [720p].mkv
2020-01-21 11:39 - 2020-01-21 11:39 - 000030871 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 77 [720p].ass
2020-01-19 13:53 - 2020-01-21 15:25 - 000048933 _____ C:\Users\rewko\Desktop\Arrow.S08E08.AMZN.WEB-DL.DDP5.1.H.264-CasStudio-cz.srt
2020-01-18 19:09 - 2020-01-18 19:09 - 000000000 ____D C:\Users\rewko\AppData\Local\Indiana
2020-01-18 18:44 - 2020-01-18 18:47 - 000001269 _____ C:\Users\rewko\Desktop\CrystalDiskInfo.lnk
2020-01-18 18:44 - 2020-01-18 18:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2020-01-18 18:44 - 2020-01-18 18:44 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2020-01-18 14:18 - 2020-01-18 18:48 - 000000000 ____D C:\Users\rewko\AppData\Roaming\HD Tune Pro
2020-01-18 14:17 - 2020-01-18 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2020-01-18 14:17 - 2020-01-18 14:17 - 000000000 ____D C:\Program Files (x86)\HD Tune Pro
2020-01-18 12:39 - 2020-02-11 18:08 - 000000147 _____ C:\CosairDram.txt
2020-01-18 12:39 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files\Patriot
2020-01-18 12:39 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files (x86)\LightingService
2020-01-18 12:39 - 2018-02-12 04:22 - 000025616 _____ C:\WINDOWS\system32\Drivers\MsIo64.sys
2020-01-18 12:38 - 2020-01-18 12:41 - 000000786 _____ C:\Users\Public\Desktop\AURA.lnk
2020-01-18 12:38 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files\ASUS
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\Program Files\Galaxy
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-01-18 12:38 - 2019-12-11 10:25 - 000120880 _____ C:\WINDOWS\system32\AsIO2.dll
2020-01-18 12:38 - 2019-12-11 10:25 - 000095280 _____ C:\WINDOWS\SysWOW64\AsIO2.dll
2020-01-18 12:38 - 2019-12-11 10:25 - 000033832 _____ C:\WINDOWS\system32\Drivers\AsIO2.sys
2020-01-18 12:38 - 2019-04-24 11:25 - 000029368 _____ C:\WINDOWS\system32\Drivers\GLCKIO2.sys
2020-01-18 12:37 - 2020-01-18 12:37 - 000000000 ____D C:\Users\rewko\Desktop\Lighting_Control_1.07.79
2020-01-18 08:22 - 2020-01-18 08:22 - 000000000 ____D C:\Users\rewko\Downloads\Angela White - Busting On The Burglar
2020-01-17 16:08 - 2020-01-17 16:08 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-17 16:02 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-17 16:02 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-16 17:15 - 2020-01-16 17:16 - 729593897 _____ C:\Users\rewko\Downloads\[HorribleSubs] Somali to Mori no Kamisama - 01 [720p].mkv
2020-01-16 17:15 - 2020-01-16 17:15 - 000025846 _____ C:\Users\rewko\Downloads\Somali_to_Mori_no_Kamisama_-_01_preklad.ass
2020-01-15 18:20 - 2020-01-15 18:20 - 000029461 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 76 [720p].ass
2020-01-15 17:52 - 2020-01-15 17:52 - 000033121 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 75 [720p].ass
2020-01-15 16:59 - 2020-01-15 17:01 - 737932191 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 76 [720p].mkv
2020-01-15 16:57 - 2020-01-15 17:00 - 737224070 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 75 [720p].mkv
2020-01-15 16:57 - 2020-01-15 16:59 - 737446067 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 74 [720p].mkv
2020-01-15 16:57 - 2020-01-15 16:57 - 000039401 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 73 [720p].ass
2020-01-15 16:57 - 2020-01-15 16:57 - 000036288 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 74 [720p].ass
2020-01-15 16:56 - 2020-01-15 16:59 - 736513578 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 73 [720p].mkv
2020-01-14 14:58 - 2020-01-14 14:58 - 000240739 _____ C:\Users\rewko\Downloads\PTV_TPS_CZ_CZ.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-13 08:49 - 2019-11-12 14:48 - 000000000 ____D C:\Users\rewko\AppData\Local\Origin
2020-02-13 08:49 - 2019-11-12 14:48 - 000000000 ____D C:\ProgramData\Origin
2020-02-13 08:48 - 2019-11-09 19:35 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-13 08:46 - 2019-12-07 19:38 - 000000000 ____D C:\Program Files (x86)\Steam
2020-02-13 08:46 - 2019-06-27 14:59 - 000000000 ___RD C:\Users\rewko\OneDrive
2020-02-12 20:11 - 2019-11-09 19:51 - 000000000 ____D C:\Users\rewko\AppData\Local\Battle.net
2020-02-12 20:02 - 2019-11-09 19:28 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-12 18:37 - 2019-11-09 20:11 - 000000000 ____D C:\Users\rewko\AppData\Roaming\vlc
2020-02-12 10:36 - 2019-11-09 20:00 - 000000000 ____D C:\Users\rewko\AppData\Roaming\qBittorrent
2020-02-11 20:23 - 2020-01-01 11:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-11 20:23 - 2020-01-01 11:35 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-11 18:14 - 2019-11-09 19:43 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-02-11 18:14 - 2019-11-09 19:30 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-02-11 18:14 - 2019-11-09 19:30 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-02-11 18:14 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\INF
2020-02-11 18:08 - 2020-01-12 14:05 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-02-11 18:08 - 2019-11-09 19:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-11 18:08 - 2019-11-09 19:25 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-02-11 17:51 - 2019-11-09 19:26 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-10 08:43 - 2019-11-09 19:28 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-10 08:43 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-09 08:48 - 2019-11-12 14:54 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-02-09 08:48 - 2019-11-12 14:48 - 000000000 ____D C:\Users\rewko\AppData\Roaming\Origin
2020-02-08 20:15 - 2019-07-07 18:22 - 000000000 ____D C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-02-07 17:45 - 2019-11-09 19:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-06 18:55 - 2019-11-09 19:43 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2545330955-1925899768-253270718-1001
2020-02-06 18:55 - 2019-11-09 19:36 - 000002361 _____ C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-05 11:48 - 2019-12-03 18:15 - 000000000 ____D C:\Users\rewko\AppData\Local\NVIDIA Corporation
2020-02-05 11:48 - 2019-11-09 19:35 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-02-05 09:35 - 2019-11-09 19:36 - 000000000 ____D C:\Users\rewko
2020-02-05 07:18 - 2020-01-01 11:35 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-05 07:18 - 2020-01-01 11:35 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-03 17:32 - 2019-11-17 08:03 - 000000000 ____D C:\Users\rewko\AppData\Local\NVIDIA
2020-02-01 15:45 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-01-30 23:58 - 2019-12-12 19:30 - 004230752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-01-30 23:58 - 2019-11-07 17:31 - 004963008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-01-30 02:40 - 2019-11-07 17:31 - 000055783 _____ C:\WINDOWS\system32\nvinfo.pb
2020-01-30 00:56 - 2019-11-09 19:35 - 005577224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 002655864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 001767920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000670840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000454512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000131176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000083976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-01-29 16:28 - 2019-11-09 19:51 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-01-28 16:06 - 2019-11-09 19:45 - 000000000 ____D C:\Users\rewko\AppData\Local\PlaceholderTileLogoFolder
2020-01-28 16:06 - 2019-11-09 19:41 - 000000000 ____D C:\Users\rewko\AppData\Local\Packages
2020-01-27 16:26 - 2019-11-12 14:50 - 000000000 ____D C:\Users\rewko\AppData\Local\D3DSCache
2020-01-27 15:17 - 2020-01-03 16:12 - 000002017 _____ C:\Users\Public\Desktop\F-Secure SAFE.lnk
2020-01-27 08:11 - 2019-11-09 19:35 - 008887562 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-01-26 14:17 - 2019-10-06 13:28 - 000000000 ____D C:\Games
2020-01-23 14:28 - 2019-11-09 19:35 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-01-22 15:14 - 2020-01-01 11:30 - 000000000 ____D C:\Program Files (x86)\MSI
2020-01-22 15:14 - 2019-11-09 18:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2020-01-21 16:29 - 2019-11-09 19:41 - 000000000 ____D C:\ProgramData\Packages
2020-01-18 17:53 - 2019-11-21 15:08 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-01-18 12:39 - 2020-01-01 11:34 - 000000000 ____D C:\Program Files\ENE
2020-01-18 12:39 - 2019-11-12 14:50 - 000000000 ____D C:\ProgramData\Package Cache
2020-01-18 12:38 - 2020-01-01 11:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-01-18 12:35 - 2017-10-17 18:21 - 000356446 _____ C:\Users\rewko\Desktop\AURA SDK Guide_2.0.0.pdf
2020-01-18 12:35 - 2017-08-25 15:05 - 000000188 _____ C:\Users\rewko\Desktop\ver.02.03.txt
2020-01-17 16:17 - 2019-11-09 19:34 - 000268616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-17 16:11 - 2019-11-09 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-17 16:09 - 2019-11-09 19:47 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-16 15:01 - 2019-11-12 14:49 - 000000000 ____D C:\Program Files (x86)\Origin

==================== Files in the root of some directories ========

2020-01-01 11:30 - 2020-01-01 11:30 - 000007605 _____ () C:\Users\rewko\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by rewko (13-02-2020 08:53:30)
Running from C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Windows 10 Pro Version 1909 18363.592 (X64) (2019-11-09 18:41:33)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2545330955-1925899768-253270718-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2545330955-1925899768-253270718-503 - Limited - Disabled)
Guest (S-1-5-21-2545330955-1925899768-253270718-501 - Limited - Disabled)
rewko (S-1-5-21-2545330955-1925899768-253270718-1001 - Administrator - Enabled) => C:\Users\rewko
WDAGUtilityAccount (S-1-5-21-2545330955-1925899768-253270718-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: F-Secure SAFE (Enabled - Up to date) {8AC831E5-DF57-0DC0-D07B-4DE1A5FFFD9A}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
AIDA64 Extreme v6.20 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.20 - FinalWire Ltd.)
Aktualizace NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{96f500e7-aac6-40c8-aa25-d223f373d8dd}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{1b15ca41-2671-4685-ab55-b8c814c4942a}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32\...\{94267bd0-fa8a-4aa4-925d-ec3e0d130fba}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{e46f527f-1e64-4554-abc1-115f3429c25c}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{b96dabae-c7ef-45f2-95ab-1a4d917262a3}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{D800D836-DE15-4B00-8273-521F022CD837}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{d00daf18-4c78-4fc6-bb05-376a06c79c48}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM\...\{B5E322FB-C191-463E-BDDD-4F22290EDFDB}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM-x32\...\{277875e0-972c-4705-b09c-ca5acf5b2f7c}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.03.45 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{2977b6c2-6523-42f4-8f52-bf4f7fc7a840}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{52400cff-4628-4ca3-a922-3767b198c1fd}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{243ceb39-3b77-43ab-9135-fddab4ac7caf}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{3dcded5b-10da-4d98-9c1f-c33d25288ebd}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM\...\{723B40A4-5BF2-4DC6-834A-2ADF75F3CF7E}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM-x32\...\{0ebcd5fb-7bf9-45b4-a0b6-0932d728e289}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.07.79 - ASUSTeK Computer Inc.)
AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.37 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{60d8d6b5-0ec5-420a-a407-a42e19346d46}) (Version: 1.0.37 - ASUS) Hidden
AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.03.79 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{880f3eb6-28fe-4c63-875f-c6fb491fc334}) (Version: 3.03.79 - ASUSTeK Computer Inc.)
Avant Browser (remove only) (HKLM-x32\...\AvantBrowser) (Version: 12.5.0.0 - Avant Force)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1085 - AB Team, d.o.o.)
Corsair AURA DRAM Component (HKLM\...\{376E0869-A4F1-4DC7-A1FD-EBF3AFFEB832}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
Corsair AURA DRAM Component (HKLM-x32\...\{8fce5ea9-d56f-4f89-a363-830eceb72c72}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
CrystalDiskInfo 7.0.4 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.4 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dynamic Application Loader Host Interface Service (HKLM\...\{BCBA926F-0E0A-4AB4-9498-7A8E78A83408}) (Version: 1.0.0.0 - Intel Corporation) Hidden
ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.0.0 - ENE TECHNOLOGY INC.) Hidden
ENE RGB HAL (HKLM\...\{BBEB79B8-472B-44E6-B0BA-157909EFE7D6}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{e0fa04a3-0593-40a3-8eea-c45cf5d09062}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_ASM_HAL (HKLM\...\{CB19FBA3-7A4F-4D2A-A231-F580B5DCD203}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_ASM_HAL (HKLM-x32\...\{3532d794-73d7-42bd-af02-9f00623dd567}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{455E34DD-5F26-431E-B542-72F73A8FEED8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{24a265a5-9f90-4090-904f-5ed9fa4414b8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EZ CD Audio Converter (HKLM-x32\...\EZ CD Audio Converter) (Version: 8.2.2 - Poikosoft)
F-Secure SAFE (HKLM-x32\...\{9DEBA07D-5FCD-42F8-88F7-0232DC284B47}) (Version: 17.7 - F-Secure Corporation)
GALAX GAMER RGB (HKLM\...\{06A16AA8-BBA7-4362-962E-16651962D87C}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Hidden
GALAX GAMER RGB (HKLM-x32\...\{1257fdeb-ffa3-4e17-9d4b-189075ea3656}) (Version: 1.00.02 - Galaxy Microsystems Ltd.)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{BB9BB437-83CC-4497-AE89-911D61973784}) (Version: 6.5.1.330 - Intel Corporation) Hidden
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{dfe98c64-9135-41f4-a771-0a6cb80289af}) (Version: 6.5.1.330 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1937.12.0.1312 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{c4a581e8-a702-448c-80c7-4b6192985db2}) (Version: 10.1.18228.8176 - Intel(R) Corporation)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{c0c65c06-e79e-44b5-bd66-85099364afeb}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MSI APP Manager (HKLM-x32\...\{00F47104-12BA-4E58-A7E6-F456C1BA338E}}_is1) (Version: 1.0.0.32 - MSI)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 3.0.0.99 - MSI)
MSI DPC Latency Tuner (HKLM-x32\...\{1AAC56F3-3F60-47DB-BE6B-088F36ADFDC5}_is1) (Version: 1.0.0.38 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.15 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.65 - MSI)
MSI MysticLight (HKLM-x32\...\{93874B70-6C5E-446A-AF4D-E5AC776A0386}}_is1) (Version: 3.0.0.66 - MSI)
MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.43 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.28 - MSI)
MSI X Boost (HKLM-x32\...\{515143BB-7A11-4D85-B941-D520AAAA099C}_is1) (Version: 1.0.0.46 - MSI)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.5.0.0 - Duodian Technology Co. Ltd.)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.16.148 (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.16.148 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.338.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.19 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 442.19 - NVIDIA Corporation) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Patriot Viper RGB (HKLM\...\{E42E13B0-071E-49C1-B1CC-58198E82F302}) (Version: 1.00.08 - Patriot Memory) Hidden
Patriot Viper RGB (HKLM-x32\...\{4b7bfeff-ac47-46c1-aea6-4556f5f0e6bb}) (Version: 1.00.08 - Patriot Memory)
qBittorrent 4.1.9.1 (HKLM-x32\...\qBittorrent) (Version: 4.1.9.1 - The qBittorrent project)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.34.307.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8844.1 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.23.0 - Samsung Electronics Co., Ltd.)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 13.0.0.53 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.2.2558 - TeamViewer)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)

Packages:
=========
AdBlock -> C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-25] (BetaFish)
EdgeDevtoolsPlugin -> C:\Windows\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-11-09] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.7.199.0_x64__dt26b99r8h8gj [2020-01-02] (Realtek Semiconductor Corp)
Samsung Flow -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy [2020-01-30] (Samsung Electronics Co, Ltd.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0 [2020-01-30] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [F-Secure DataGuard Icon Overlay] -> {CA789262-D278-40F7-AC12-19C0395F9DD9} => C:\Program Files (x86)\F-Secure\SAFE\FsShellExtension64.dll [2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => C:\Program Files\EZ CD Audio Converter\ezcd64.dll [2018-11-28] (Poikosoft -> Poikosoft)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => C:\Program Files\EZ CD Audio Converter\ezcd64.dll [2018-11-28] (Poikosoft -> Poikosoft)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-12-07 10:24 - 2019-12-07 10:24 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2020-01-01 11:34 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\APP Manager\unrar.dll
2020-01-22 15:14 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\Live Update\unrar.dll
2020-01-01 11:34 - 2017-08-02 14:48 - 000237568 _____ () [File not signed] C:\Program Files (x86)\MSI\MysticLight\LEDControl.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2019-11-12 14:49 - 2020-01-16 15:01 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2019-11-05 14:33 - 2019-11-05 14:33 - 000209920 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\AacHal_x86.dll
2019-10-22 02:16 - 2019-10-22 02:16 - 000264704 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\SB_SMBUS_SDK.dll
2019-11-06 14:09 - 2019-11-06 14:09 - 000190976 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\AacHal_x86.dll
2019-11-25 14:44 - 2019-11-25 14:44 - 000176128 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_ASM_HAL\AacHal_x86.dll
2019-07-25 11:55 - 2019-07-25 11:55 - 000184832 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_M2_HAL\AacHal_x86.dll
2018-09-20 09:39 - 2018-09-20 09:39 - 000156672 _____ () [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\AacHal_x86.dll
2019-12-21 09:24 - 2019-12-21 09:24 - 000064512 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_frozenlist.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000050176 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_helpers.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000225792 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_http_parser.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000045056 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_http_writer.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_websocket.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\multidict\_multidict.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000073216 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\yarl\_quoting.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000231424 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\_yaml.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000048128 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_frozenlist.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000036864 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_helpers.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000216064 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_parser.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000032256 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_writer.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000022528 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_websocket.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\multidict\_multidict.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000061952 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\psutil\_psutil_windows.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000073216 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\yarl\_quoting.cp37-win32.pyd
2019-12-10 16:40 - 2019-12-10 16:40 - 002831360 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\LightingService\log4cxx.dll
2020-01-01 11:34 - 2018-04-03 15:22 - 000053248 _____ (MS) [File not signed] C:\Program Files (x86)\MSI\MysticLight\MsIo32.dll
2018-09-20 09:08 - 2018-09-20 09:08 - 000053760 _____ (MS) [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\MsIo32_Galax.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\SSLEAY32.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 003513344 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 054071296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-12-03 16:12 - 2019-12-03 16:12 - 000467456 _____ (TODO: <Company name>) [File not signed] C:\Program Files\ASUS\Aac_Keyboard\AacKbHal_x86.dll
2020-01-01 11:34 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\MysticLight\Lib\SDKDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\rewko\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\rewko\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-11-09 19:29 - 2019-11-09 19:28 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2019-12-30 10:48 - 2020-01-04 17:14 - 000000511 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 DESKTOP-QF3F7F4.mshome.net # 2025 1 4 2 16 14 29 103
192.168.137.91 Galaxy-A7-2018.mshome.net # 2020 1 6 11 16 14 29 103

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rewko\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [{6115B74A-F481-4715-B51F-7F5978E26C20}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{D531BAE0-5E73-4CC2-AE2F-7A4AB0C416D8}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{BAC5F3AA-EFD6-43BC-8A3B-6DA4968CC73E}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{2CB49B95-EE1B-423A-8DD4-9680E1D6A5FB}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{84CC4630-C137-41E7-8653-AED8C28C4A17}] => (Allow) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{A7B82843-BF0C-446B-9EB8-F9404093B804}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [{5E6809B5-E17F-4227-8BF1-56821853B798}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A40E82B2-C317-446E-9903-730A51BCF82C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{9356E3C2-9C16-440C-BAEF-92D374571DF7}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{2922C635-64C8-472B-BB35-91F0277FBF71}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{F909AC20-CFFF-4977-B952-BB207B6B4029}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DFD8BA8E-310D-444E-9862-5D8C11ADF220}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{54D7EB71-A3E2-41A1-BCB2-E519557D086B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8F943F30-7256-492E-A494-53791FA30229}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{07827EF2-5C19-4622-B66E-EA8A27ED91D2}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{B117FC1C-A434-4333-8A0D-DFE90A19CA05}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{09D6F9AE-95E1-4F59-9646-8D072A9B7F29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{89833A94-EB61-4C81-AB82-28C43B823A0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1F72C4B8-7690-460F-93C4-B2B483F8C377}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F7F77E03-08C9-421F-AECE-6C2E14B81FBC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{437D91B6-AC79-414D-99F7-9AD5528D90DE}] => (Allow) G:\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{A40069FE-EE6F-4B89-BD6D-5A3773334706}] => (Allow) G:\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{2CDE5D93-619A-48B1-97DF-E0AFE0ED1E04}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D0D26D84-1CA2-412C-9503-52119B5F134C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C10581A0-27C0-49C1-9DB6-6723C7FEF231}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{4E317ECE-E6E0-4A70-B478-F05550BEFD60}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{44990B40-A639-4496-B85A-159666556E7A}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{8363E8C6-65C4-4AC0-B1BF-DF46FE33E2F3}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{64B55CF8-4689-466E-A368-74D8BDC521C2}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{1867F314-3288-46D1-A0CC-84763AB5AA06}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{CEE6493D-7238-4E8B-B60B-5C353A49C9AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7930DBC3-62C9-4598-B1ED-9EA1047A2CF2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{85A32405-D95A-46CA-AA4C-9E9FC67846AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A83966F1-9B01-405B-9EAA-83D54ED4B263}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BF9BA3AA-B6DF-4F7B-AA03-0CF3DA5E8124}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AE192729-ACB2-463A-86A2-135535EE22E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4BEFF340-F053-4C77-91AD-786F26761EA2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5E3CF6BD-D833-4FC0-A363-33D5CD75C201}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{4337516C-0A0B-423A-BE7A-992C02FE4B27}C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{DEE386FA-E6D1-4A3E-9B88-FC0D9BE4C748}C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{70D81B6A-8546-48A5-85C9-71E30D0FCEA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{9DB2E6D6-7DC7-4FC7-B04D-9569F80D685E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{7700146B-8902-4240-90D5-618006DB4F97}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grove flowers\nw.exe (The NW.js Community) [File not signed]
FirewallRules: [{84EC79F5-2E05-4023-BB18-A03E61795306}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grove flowers\nw.exe (The NW.js Community) [File not signed]
FirewallRules: [{92E80C83-10EB-415C-B204-F3548B7D47B3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3B726F82-A32D-48BD-8BB3-B69DB2F4FC53}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{FF272929-B573-4835-AB36-DF9C7F92B3B1}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{66D00699-62F6-4C41-9A2D-CB6308D3CC2A}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{439B30A1-AE8E-4D35-B7BA-52BC60B2129B}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{C5B5C231-04F4-484D-A148-3284B654785A}] => (Allow) LPort=26820
FirewallRules: [{B70A1684-9A17-4616-9237-E1863B2E5A2D}] => (Allow) LPort=26822

==================== Restore Points =========================

07-02-2020 14:30:49 Naplánovaný kontrolní bod
11-02-2020 17:50:57 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/13/2020 08:46:48 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=4

Error: (02/13/2020 08:46:27 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).

Error: (02/13/2020 08:43:48 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0x8007139F
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (02/13/2020 08:43:42 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0x8007139F
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (02/12/2020 08:07:38 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (22108,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/12/2020 07:59:20 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (23864,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/12/2020 07:37:38 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9780,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/12/2020 07:23:33 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (21812,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (02/10/2020 09:21:21 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_abfb358 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell

Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_abfb358 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Uživatelská služba pro GameDVR a vysílání her_abfb358 bylo dosaženo časového limitu (30000 ms).

Error: (02/10/2020 09:21:21 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_abfb358 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell

Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_abfb358 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Uživatelská služba pro GameDVR a vysílání her_abfb358 bylo dosaženo časového limitu (30000 ms).

Error: (02/09/2020 10:02:18 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_6f9447f s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell

Error: (02/09/2020 10:02:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_6f9447f neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.


Windows Defender:
===================================
Date: 2019-12-23 07:57:54.238
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {540CC8B3-58C8-4013-AAAC-D894F91AA2B3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-12-21 21:32:37.481
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Zpevdo.A
ID: 2147727143
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2019-12-21 21:26:34.705
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2019-12-21 21:26:29.777
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2019-12-21 21:26:17.772
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

CodeIntegrity:
===================================

Date: 2020-02-13 08:43:43.912
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-02-13 08:43:43.909
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-02-13 08:43:43.904
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-02-13 08:43:43.901
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-02-13 08:43:43.894
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-02-12 16:00:14.440
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-02-12 16:00:10.583
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-02-12 16:00:08.510
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1576069576\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 2.A0 08/24/2019
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i7-8700 CPU @ 3.20GHz
Percentage of memory in use: 43%
Total physical RAM: 16326.21 MB
Available physical RAM: 9291.13 MB
Total Virtual: 18758.21 MB
Available Virtual: 8420.36 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.87 GB) (Free:29.29 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1862.98 GB) (Free:0.53 GB) NTFS
Drive e: () (Fixed) (Total:1667.7 GB) (Free:53.56 GB) NTFS
Drive g: () (Fixed) (Total:195.31 GB) (Free:77.23 GB) NTFS
Drive h: (2.5 PALCE) (Fixed) (Total:931.51 GB) (Free:168.77 GB) NTFS

\\?\Volume{e580499b-1762-4e4f-a029-b359879fab72}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.07 GB) NTFS
\\?\Volume{f11ed521-731f-443b-9d0c-4ee98bdd3774}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==================== End of Addition.txt =======================

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 13.02.20
Čas skenování: 10:26
Logovací soubor: dd6e4916-4e42-11ea-a0e1-309c2384bbd6.json

-Informace o softwaru-
Verze: 4.0.4.49
Verze komponentů: 1.0.823
Aktualizovat verzi balíku komponent: 1.0.19146
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 18362.592)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-QF3F7F4\rewko

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 277373
Zjištěné hrozby: 1
Hrozby umístěné do karantény: 0
Uplynulý čas: 0 min, 56 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 1
RiskWare.GameHack, C:\PROGRAM FILES (X86)\GRAND THEFT AUTO V\STEAM_API64.DLL, Žádná uživatelská akce, 7414, 305544, 1.0.19146, , ame,

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Nález MBAM smažte a dejte nové logy FRST+Addition.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020
Ran by rewko (administrator) on DESKTOP-QF3F7F4 (Micro-Star International Co., Ltd. MS-7B48) (13-02-2020 15:34:01)
Running from C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Loaded Profiles: rewko (Available Profiles: rewko)
Platform: Windows 10 Pro Version 1909 18363.592 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsorsp64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\FsPisces.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulprothoster.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(GOG Sp. z o.o. -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\rewko\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\APP Manager\AppManager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe
(Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [APP Manager] => C:\Program Files (x86)\MSI\APP Manager\AppManager.exe [3705520 2019-05-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-06-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [X_Boost] => C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe [4260000 2018-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26292912 2020-01-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3137808 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36098448 2020-02-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3365840 2020-02-11] (Valve -> Valve Corporation)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [launchOnStartup] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13186120 2019-12-29] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\RunOnce: [Application Restart #2] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.100\Installer\chrmstp.exe [2020-02-11] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07450C28-6721-48EE-A52C-AD96326E5849} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1068688 2019-08-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {1B333883-02A8-4C2A-9855-DDE8251A800D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {233D7998-23D3-45FC-9EAA-F8A9867CAD33} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {26C40013-35A5-4A63-ABB1-46CF48181851} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {374FE778-7CEC-4B62-AB84-167790489BA3} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\IntelPTTEKRecertification.exe [938768 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {4CF4388A-7DF3-4D08-BBDB-857D95C3206D} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {644EC0E1-2924-4BA9-ADA0-281BAF8B24CA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BEFCEC5-E257-4B6E-8306-B380AF3D2C68} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {72F01EF0-A015-4A06-B9AA-EC6DD61D6EDA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A71C56C9-676D-48B7-956E-9DD6527BD53C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ABC08BA4-A1D6-4F2A-A72C-8578C943293E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {AC1D535C-A2AE-4EA1-BBD2-F0C1A01599D0} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {AF7AF81B-D988-402D-8D88-AAB1A3797E7E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C08AA499-FD9D-4AD1-9782-D64D48875012} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\F-Secure\SAFE\fs_hotfix.exe [280464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
Task: {D8D57FCA-48E8-4C4A-98D3-DB527A3C1AB1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E7AA5E24-C07F-4F7C-A38E-C9137E29F2FE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F78046A1-578B-4AD6-9574-EDA6D5863F9C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{35c8ea1d-39f7-4e26-a0d9-f3bae6f80935}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{4c1c4675-98dc-48ce-8325-a7cc3d28333a}: [DhcpNameServer] 62.129.50.20 85.135.32.100

Internet Explorer:
==================
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_ie_https\fs_ie_https64.dll [2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_ie_https\fs_ie_https.dll [2020-02-12] (F-Secure Corporation -> F-Secure Corporation)

Edge:
======
DownloadDir: C:\Users\rewko\Downloads
Edge Notifications: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> hxxps://www.facebook.com
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-25]

FireFox:
========
FF DefaultProfile: jvgxijac.default
FF ProfilePath: C:\Users\rewko\AppData\Roaming\Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\jvgxijac.default [2019-12-15]
FF NetworkProxy: Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\jvgxijac.default -> type", 0
FF HKLM\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Extension: (Browsing Protection by F-Secure) - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi [2020-02-12]
FF HKLM-x32\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default [2020-02-11]
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.msn.com/?p ... google.com"
CHR Extension: (Prezentace) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-03]
CHR Extension: (Dokumenty) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-03]
CHR Extension: (Disk Google) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-03]
CHR Extension: (YouTube) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-03]
CHR Extension: (Tabulky) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-03]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-02-11]
CHR Extension: (Super Netflix) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\iakpdiefpdniabbekcbofaanjcpjkloe [2020-01-03]
CHR Extension: (Browsing Protection by F-Secure) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-01-03]
CHR Extension: (Netflix Subtitles Automatic (beta)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpgadigdffhcjldfkanacncocacekkie [2020-01-03]
CHR Extension: (OpenSubtitles for Netflix) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcdnnmhalbjbccempnhabdaeilabmdop [2020-01-03]
CHR Extension: (Tomikup Tlačítko) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlpfbleimihijpglffkfgngdlgplkjf [2020-01-03]
CHR Extension: (DotVPN — lepší způsob VPN) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2020-01-03]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2020-02-11]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-01-03]
CHR Extension: (Plugins) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcblfncjaclajmegihojiekebofjcen [2020-01-03]
CHR Extension: (Open in VLC™ (VideoLAN)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhpfgmjcpbdcbmhjbhogflbbmdbomfmb [2020-01-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-03]
CHR Extension: (Gmail) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-11]
CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2020-01-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2020-02-12] (BitRaider LLC -> BitRaider, LLC)
R2 fshoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [216464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [216464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulhoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulnethoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulorsp; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsorsp64.exe [101248 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulprothoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulprothoster.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1582664 2019-12-29] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-06] (GOG Sp. z o.o. -> GOG.com)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2414264 2017-08-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [542016 2018-11-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\SocketHeciServer.exe [876304 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\TPMProvisioningService.exe [806152 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe [648080 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [2668136 2019-12-16] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 LMS; C:\WINDOWS\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [553056 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343600 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2740912 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_AppManager_Service; C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe [2055352 2019-01-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_DPCLTSERVICE; C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [2167440 2019-04-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [113336 2017-12-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2325168 2019-11-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183480 2019-02-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3393848 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [974848 2019-08-17] (Microsoft Windows -> )
S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [290816 2019-10-04] (Microsoft Windows -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11791704 2019-03-18] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XTU3SERVICE; C:\WINDOWS\SysWOW64\XtuService.exe [26416 2019-05-06] (Intel Corporation -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [33832 2019-12-11] (ASUSTeK Computer Inc. -> )
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2020-02-12] (BitRaider -> BitRaider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [136040 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-06-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-06-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
R3 F-Secure Gatekeeper; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulgk.sys [290144 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R1 F-Secure UL HIPS; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshs.sys [103048 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R0 fsbts; C:\WINDOWS\System32\drivers\fsbts.sys [57512 2020-01-03] (F-Secure Corporation -> )
S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [15296 2020-01-03] (Microsoft Windows Early Launch Anti-malware Publisher -> F-Secure Corporation)
R3 fsni; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\fsni64.sys [111472 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [70664 2017-08-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [144528 2018-11-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [226448 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [119960 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
U1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. -> )
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2019-03-19] (Microsoft Windows -> Intel Corporation)
R3 NTIOLib_DPC; C:\Program Files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [14288 2017-03-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9e532b5f619dc909\nvlddmkm.sys [23276960 2020-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1141744 2019-04-18] (Realtek Semiconductor Corp. -> Realtek )
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2020-02-04] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 XTUComponent; C:\WINDOWS\System32\drivers\iocbios2.sys [38280 2019-05-06] (Intel Corporation -> Intel Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2019-11-17] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-13 15:32 - 2020-02-13 15:32 - 000000000 ____D C:\Users\rewko\AppData\LocalLow\IGDump
2020-02-13 15:28 - 2020-02-13 15:28 - 000000000 ___HD C:\OneDriveTemp
2020-02-13 11:36 - 2020-02-13 11:36 - 000000000 ____D C:\Users\rewko\Documents\Star Wars - The Old Republic
2020-02-13 10:26 - 2020-02-13 10:26 - 000226448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-02-13 10:26 - 2020-02-13 10:26 - 000119960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-02-13 10:26 - 2020-02-13 10:26 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-02-13 10:24 - 2020-02-13 10:25 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-02-13 10:24 - 2020-02-13 10:25 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-02-13 10:24 - 2020-02-13 10:25 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-02-13 10:24 - 2020-02-13 10:24 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-02-13 10:24 - 2020-02-13 10:24 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Users\rewko\AppData\Local\mbamtray
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Users\rewko\AppData\Local\mbam
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Users\rewko\AppData\Local\cache
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Program Files\Malwarebytes
2020-02-13 08:52 - 2020-02-13 15:34 - 000000000 ____D C:\FRST
2020-02-12 17:57 - 2020-02-12 18:22 - 584419276 _____ C:\Users\rewko\Downloads\Fairy Tail - 195 [1080p].mkv
2020-02-12 17:55 - 2020-02-12 17:55 - 000000000 ____D C:\Users\rewko\Documents\HeroBlade Logs
2020-02-12 17:55 - 2020-02-12 17:55 - 000000000 ____D C:\Users\rewko\AppData\Local\SWTOR
2020-02-12 16:18 - 2020-02-12 16:18 - 000000000 ____D C:\Users\Public\Documents\BitRaider
2020-02-12 16:18 - 2020-02-12 16:18 - 000000000 ____D C:\ProgramData\BitRaider
2020-02-12 16:15 - 2020-02-12 16:15 - 000000000 ____D C:\Users\rewko\AppData\Local\SWTORPerf
2020-02-12 16:13 - 2020-02-12 16:13 - 000000689 _____ C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2020-02-12 16:13 - 2020-02-12 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2020-02-12 16:13 - 2020-02-12 16:13 - 000000000 _____ C:\end
2020-02-12 09:32 - 2020-02-12 09:48 - 374803518 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 80 [480p].mkv
2020-02-12 09:31 - 2020-02-12 09:31 - 000037771 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 80 [720p].ass
2020-02-11 14:48 - 2020-02-11 14:53 - 740984058 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 05 [720p].mkv
2020-02-11 14:47 - 2020-02-11 14:47 - 000031178 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_05_720p.ass
2020-02-10 10:52 - 2015-11-04 16:40 - 191158825 _____ C:\Users\rewko\Desktop\Fairy Tail - 157 CZ.mkv
2020-02-09 18:52 - 2020-02-09 19:07 - 741033740 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 05 [720p].mkv
2020-02-09 18:51 - 2020-02-09 19:06 - 754032752 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 18 [720p].mkv
2020-02-08 20:17 - 2020-02-08 20:17 - 000000000 ____D C:\Users\rewko\AppData\Local\GroveFlowers
2020-02-08 20:15 - 2020-02-08 20:15 - 000000223 _____ C:\Users\rewko\Desktop\Grove flowers.url
2020-02-07 17:58 - 2020-02-07 17:58 - 000000137 _____ C:\Users\rewko\Desktop\Ori and the Blind Forest.url
2020-02-07 15:54 - 2020-02-07 15:59 - 589975878 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 05 [720p].mkv
2020-02-07 15:53 - 2020-02-07 15:53 - 000016866 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 05 [720p].ass
2020-02-07 08:11 - 2020-02-07 08:51 - 2924342891 _____ C:\Users\rewko\Downloads\ Star.Trek.Picard.S01E03.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-02-06 14:45 - 2020-02-06 14:52 - 743053440 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 04 [720p].mkv
2020-02-06 14:45 - 2020-02-06 14:45 - 000035074 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_04_720p.ass
2020-02-06 13:14 - 2020-02-06 13:14 - 000034076 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_03_720p.ass
2020-02-06 12:31 - 2020-02-06 12:36 - 743174363 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 03 [720p].mkv
2020-02-06 12:23 - 2020-02-06 12:28 - 743533564 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 02 [720p].mkv
2020-02-06 12:22 - 2020-02-06 12:22 - 000035144 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 02 [720p].ass
2020-02-06 10:03 - 2020-02-06 10:10 - 743547492 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 01 [720p].mkv
2020-02-06 10:02 - 2020-02-06 10:02 - 000031039 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 01 [720p].ass
2020-02-05 11:48 - 2020-02-05 11:48 - 000001472 _____ C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk
2020-02-05 11:48 - 2020-02-05 11:48 - 000001464 _____ C:\Users\rewko\Desktop\NVIDIA GeForce NOW.lnk
2020-02-05 08:56 - 2020-02-05 08:56 - 000000000 ____D C:\Users\rewko\AppData\Roaming\dvdcss
2020-02-05 07:36 - 2020-02-05 07:37 - 737560070 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 79 [720p].mkv
2020-02-05 07:36 - 2020-02-05 07:36 - 000040857 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 79 [720p].ass
2020-02-04 18:11 - 2020-02-04 18:11 - 000038990 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_04_1080p_CZ.ass
2020-02-04 17:16 - 2020-02-04 17:18 - 753528618 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 17 [720p].mkv
2020-02-04 16:50 - 2020-02-04 16:53 - 381426743 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 16 [480p].mkv
2020-02-03 20:32 - 2020-02-03 20:33 - 380742884 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 15 [480p].mkv
2020-02-03 20:30 - 2020-02-03 20:31 - 380952503 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 14 [480p].mkv
2020-02-03 20:07 - 2020-02-03 20:07 - 000033710 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 10 [720p].ass
2020-02-03 17:31 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000450576 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000353160 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-02-03 17:31 - 2020-01-31 00:03 - 011843504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-02-03 17:31 - 2020-01-31 00:03 - 010167544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 017462616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 005384584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 004718792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 002075904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001727320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6444219.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001569160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001490688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6444219.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001485688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001370360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001145776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001064384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000825720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000815120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000685912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000677584 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000660176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000557304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000545112 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 040511408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 035380120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 015031808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-02-02 12:52 - 2020-02-02 12:53 - 592045947 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 04 [720p].mkv
2020-02-02 12:51 - 2020-02-02 12:51 - 000024000 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 04 [720p].ass
2020-02-02 12:47 - 2020-02-02 12:48 - 586278890 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 03 [720p].mkv
2020-02-02 12:47 - 2020-02-02 12:47 - 000025144 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 03 [720p].ass
2020-02-02 12:24 - 2020-02-02 12:25 - 595025198 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 02 [720p].mkv
2020-02-02 12:23 - 2020-02-02 12:23 - 000017069 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 02 [720p].ass
2020-02-02 11:32 - 2020-02-02 11:32 - 000000000 ____D C:\Users\rewko\Downloads\A MILF s Tale 5 (2020)
2020-02-01 19:02 - 2020-02-01 19:05 - 1460501104 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 04 [1080p].mkv
2020-01-31 19:14 - 2020-01-31 19:15 - 584749977 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 01 [720p].mkv
2020-01-31 19:14 - 2020-01-31 19:14 - 000025132 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 01 [720p].ass
2020-01-31 19:12 - 2020-01-31 19:17 - 3076433650 _____ C:\Users\rewko\Downloads\Star.Trek.Picard.S01E02.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-01-30 17:31 - 2020-01-30 17:31 - 000038900 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_03_1080p_CZ.ass
2020-01-28 18:33 - 2020-01-28 18:33 - 000028064 _____ C:\Users\rewko\Downloads\Kuutei Dragons 03.ass
2020-01-28 17:46 - 2020-01-28 17:46 - 000043278 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_02_1080p_CZ (1).ass
2020-01-27 18:19 - 2020-01-27 18:20 - 741666322 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 03 [720p].mkv
2020-01-27 18:12 - 2020-01-27 18:13 - 742348334 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 02 [720p].mkv
2020-01-27 16:22 - 2020-01-27 16:24 - 1458179946 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 01 [1080p].mkv
2020-01-27 16:21 - 2020-01-27 16:21 - 000043531 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_01_1080p_CZ.ass
2020-01-26 18:20 - 2020-01-26 18:22 - 736782545 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 78 [720p].mkv
2020-01-26 18:20 - 2020-01-26 18:20 - 000035919 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 78 [720p].ass
2020-01-26 17:31 - 2020-01-26 17:31 - 000000000 ____D C:\Users\rewko\Downloads\Angela White, Ava Addams, Bridgette B - Chasing That Big D
2020-01-26 15:17 - 2020-02-04 16:34 - 002719256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2020-01-26 15:17 - 2020-02-01 10:34 - 000000000 ____D C:\Users\rewko\Documents\Black Desert
2020-01-26 15:17 - 2020-01-26 15:17 - 000000016 _____ C:\ProgramData\mntemp
2020-01-26 13:58 - 2020-01-26 14:11 - 190906545 _____ C:\Users\rewko\Downloads\Angel.Has.Fallen.2019.1080p.BluRay.CZ.EN.DD.5.1.x264-MTK.mkv
2020-01-25 08:41 - 2020-01-25 08:45 - 3249058554 _____ C:\Users\rewko\Downloads\Star.Trek.Picard.S01E01.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-01-21 15:56 - 2020-01-21 17:09 - 808669205 _____ C:\Users\rewko\Downloads\DC's Legends of Tomorrow S05E00.720p.HDTV.x264-SVA+cz tit.mkv
2020-01-21 15:55 - 2020-01-21 15:55 - 000020246 _____ C:\Users\rewko\Downloads\legends-of-tomorrow-S05E00-hdtv-By-azur58.zip
2020-01-21 15:29 - 2020-01-21 15:29 - 000652371 ____H C:\Users\rewko\Downloads\.d3af212720c2f2024431ce49fae2d9a039c38180.parts
2020-01-21 15:27 - 2020-01-21 15:27 - 000000000 ____D C:\Users\rewko\Downloads\Arrow.S08E08.Crisis.on.Infinite.Earths.Part.Four.720p.AMZN.WEB-DL.DDP5.1.H.264-[TGx]
2020-01-21 11:40 - 2020-01-21 11:41 - 737258580 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 77 [720p].mkv
2020-01-21 11:39 - 2020-01-21 11:39 - 000030871 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 77 [720p].ass
2020-01-19 13:53 - 2020-01-21 15:25 - 000048933 _____ C:\Users\rewko\Desktop\Arrow.S08E08.AMZN.WEB-DL.DDP5.1.H.264-CasStudio-cz.srt
2020-01-18 19:09 - 2020-01-18 19:09 - 000000000 ____D C:\Users\rewko\AppData\Local\Indiana
2020-01-18 18:44 - 2020-01-18 18:47 - 000001269 _____ C:\Users\rewko\Desktop\CrystalDiskInfo.lnk
2020-01-18 18:44 - 2020-01-18 18:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2020-01-18 18:44 - 2020-01-18 18:44 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2020-01-18 14:18 - 2020-01-18 18:48 - 000000000 ____D C:\Users\rewko\AppData\Roaming\HD Tune Pro
2020-01-18 14:17 - 2020-01-18 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2020-01-18 14:17 - 2020-01-18 14:17 - 000000000 ____D C:\Program Files (x86)\HD Tune Pro
2020-01-18 12:39 - 2020-02-11 18:08 - 000000147 _____ C:\CosairDram.txt
2020-01-18 12:39 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files\Patriot
2020-01-18 12:39 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files (x86)\LightingService
2020-01-18 12:39 - 2018-02-12 04:22 - 000025616 _____ C:\WINDOWS\system32\Drivers\MsIo64.sys
2020-01-18 12:38 - 2020-01-18 12:41 - 000000786 _____ C:\Users\Public\Desktop\AURA.lnk
2020-01-18 12:38 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files\ASUS
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\Program Files\Galaxy
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-01-18 12:38 - 2019-12-11 10:25 - 000120880 _____ C:\WINDOWS\system32\AsIO2.dll
2020-01-18 12:38 - 2019-12-11 10:25 - 000095280 _____ C:\WINDOWS\SysWOW64\AsIO2.dll
2020-01-18 12:38 - 2019-12-11 10:25 - 000033832 _____ C:\WINDOWS\system32\Drivers\AsIO2.sys
2020-01-18 12:38 - 2019-04-24 11:25 - 000029368 _____ C:\WINDOWS\system32\Drivers\GLCKIO2.sys
2020-01-18 12:37 - 2020-01-18 12:37 - 000000000 ____D C:\Users\rewko\Desktop\Lighting_Control_1.07.79
2020-01-18 08:22 - 2020-01-18 08:22 - 000000000 ____D C:\Users\rewko\Downloads\Angela White - Busting On The Burglar
2020-01-17 16:08 - 2020-01-17 16:08 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-17 16:02 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-17 16:02 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-16 17:15 - 2020-01-16 17:16 - 729593897 _____ C:\Users\rewko\Downloads\[HorribleSubs] Somali to Mori no Kamisama - 01 [720p].mkv
2020-01-16 17:15 - 2020-01-16 17:15 - 000025846 _____ C:\Users\rewko\Downloads\Somali_to_Mori_no_Kamisama_-_01_preklad.ass
2020-01-15 18:20 - 2020-01-15 18:20 - 000029461 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 76 [720p].ass
2020-01-15 17:52 - 2020-01-15 17:52 - 000033121 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 75 [720p].ass
2020-01-15 16:59 - 2020-01-15 17:01 - 737932191 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 76 [720p].mkv
2020-01-15 16:57 - 2020-01-15 17:00 - 737224070 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 75 [720p].mkv
2020-01-15 16:57 - 2020-01-15 16:59 - 737446067 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 74 [720p].mkv
2020-01-15 16:57 - 2020-01-15 16:57 - 000039401 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 73 [720p].ass
2020-01-15 16:57 - 2020-01-15 16:57 - 000036288 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 74 [720p].ass
2020-01-15 16:56 - 2020-01-15 16:59 - 736513578 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 73 [720p].mkv
2020-01-14 14:58 - 2020-01-14 14:58 - 000240739 _____ C:\Users\rewko\Downloads\PTV_TPS_CZ_CZ.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-13 15:32 - 2019-12-06 13:23 - 000000000 ____D C:\Program Files (x86)\Grand Theft Auto V
2020-02-13 15:29 - 2019-11-12 14:48 - 000000000 ____D C:\Users\rewko\AppData\Local\Origin
2020-02-13 15:29 - 2019-11-12 14:48 - 000000000 ____D C:\ProgramData\Origin
2020-02-13 15:29 - 2019-11-09 19:35 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-13 15:28 - 2019-12-07 19:38 - 000000000 ____D C:\Program Files (x86)\Steam
2020-02-13 15:28 - 2019-06-27 14:59 - 000000000 ___RD C:\Users\rewko\OneDrive
2020-02-13 12:33 - 2019-11-09 19:28 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-13 12:06 - 2019-11-09 19:51 - 000000000 ____D C:\Users\rewko\AppData\Local\Battle.net
2020-02-13 10:24 - 2019-11-09 19:28 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-02-12 18:37 - 2019-11-09 20:11 - 000000000 ____D C:\Users\rewko\AppData\Roaming\vlc
2020-02-12 10:36 - 2019-11-09 20:00 - 000000000 ____D C:\Users\rewko\AppData\Roaming\qBittorrent
2020-02-11 20:23 - 2020-01-01 11:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-11 20:23 - 2020-01-01 11:35 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-11 18:14 - 2019-11-09 19:43 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-02-11 18:14 - 2019-11-09 19:30 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-02-11 18:14 - 2019-11-09 19:30 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-02-11 18:14 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\INF
2020-02-11 18:08 - 2020-01-12 14:05 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-02-11 18:08 - 2019-11-09 19:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-11 18:08 - 2019-11-09 19:25 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-02-11 17:51 - 2019-11-09 19:26 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-10 08:43 - 2019-11-09 19:28 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-10 08:43 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-09 08:48 - 2019-11-12 14:54 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-02-09 08:48 - 2019-11-12 14:48 - 000000000 ____D C:\Users\rewko\AppData\Roaming\Origin
2020-02-08 20:15 - 2019-07-07 18:22 - 000000000 ____D C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-02-07 17:45 - 2019-11-09 19:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-06 18:55 - 2019-11-09 19:43 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2545330955-1925899768-253270718-1001
2020-02-06 18:55 - 2019-11-09 19:36 - 000002361 _____ C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-05 11:48 - 2019-12-03 18:15 - 000000000 ____D C:\Users\rewko\AppData\Local\NVIDIA Corporation
2020-02-05 11:48 - 2019-11-09 19:35 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-02-05 09:35 - 2019-11-09 19:36 - 000000000 ____D C:\Users\rewko
2020-02-05 07:18 - 2020-01-01 11:35 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-05 07:18 - 2020-01-01 11:35 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-03 17:32 - 2019-11-17 08:03 - 000000000 ____D C:\Users\rewko\AppData\Local\NVIDIA
2020-02-01 15:45 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-01-30 23:58 - 2019-12-12 19:30 - 004230752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-01-30 23:58 - 2019-11-07 17:31 - 004963008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-01-30 02:40 - 2019-11-07 17:31 - 000055783 _____ C:\WINDOWS\system32\nvinfo.pb
2020-01-30 00:56 - 2019-11-09 19:35 - 005577224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 002655864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 001767920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000670840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000454512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000131176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000083976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-01-29 16:28 - 2019-11-09 19:51 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-01-28 16:06 - 2019-11-09 19:45 - 000000000 ____D C:\Users\rewko\AppData\Local\PlaceholderTileLogoFolder
2020-01-28 16:06 - 2019-11-09 19:41 - 000000000 ____D C:\Users\rewko\AppData\Local\Packages
2020-01-27 16:26 - 2019-11-12 14:50 - 000000000 ____D C:\Users\rewko\AppData\Local\D3DSCache
2020-01-27 15:17 - 2020-01-03 16:12 - 000002017 _____ C:\Users\Public\Desktop\F-Secure SAFE.lnk
2020-01-27 08:11 - 2019-11-09 19:35 - 008887562 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-01-26 14:17 - 2019-10-06 13:28 - 000000000 ____D C:\Games
2020-01-23 14:28 - 2019-11-09 19:35 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-01-22 15:14 - 2020-01-01 11:30 - 000000000 ____D C:\Program Files (x86)\MSI
2020-01-22 15:14 - 2019-11-09 18:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2020-01-21 16:29 - 2019-11-09 19:41 - 000000000 ____D C:\ProgramData\Packages
2020-01-18 17:53 - 2019-11-21 15:08 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-01-18 12:39 - 2020-01-01 11:34 - 000000000 ____D C:\Program Files\ENE
2020-01-18 12:39 - 2019-11-12 14:50 - 000000000 ____D C:\ProgramData\Package Cache
2020-01-18 12:38 - 2020-01-01 11:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-01-18 12:35 - 2017-10-17 18:21 - 000356446 _____ C:\Users\rewko\Desktop\AURA SDK Guide_2.0.0.pdf
2020-01-18 12:35 - 2017-08-25 15:05 - 000000188 _____ C:\Users\rewko\Desktop\ver.02.03.txt
2020-01-17 16:17 - 2019-11-09 19:34 - 000268616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-17 16:11 - 2019-11-09 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-17 16:09 - 2019-11-09 19:47 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-16 15:01 - 2019-11-12 14:49 - 000000000 ____D C:\Program Files (x86)\Origin

==================== Files in the root of some directories ========

2020-01-01 11:30 - 2020-01-01 11:30 - 000007605 _____ () C:\Users\rewko\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by rewko (13-02-2020 15:34:44)
Running from C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Windows 10 Pro Version 1909 18363.592 (X64) (2019-11-09 18:41:33)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2545330955-1925899768-253270718-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2545330955-1925899768-253270718-503 - Limited - Disabled)
Guest (S-1-5-21-2545330955-1925899768-253270718-501 - Limited - Disabled)
rewko (S-1-5-21-2545330955-1925899768-253270718-1001 - Administrator - Enabled) => C:\Users\rewko
WDAGUtilityAccount (S-1-5-21-2545330955-1925899768-253270718-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: F-Secure SAFE (Enabled - Up to date) {8AC831E5-DF57-0DC0-D07B-4DE1A5FFFD9A}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
AIDA64 Extreme v6.20 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.20 - FinalWire Ltd.)
Aktualizace NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{96f500e7-aac6-40c8-aa25-d223f373d8dd}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{1b15ca41-2671-4685-ab55-b8c814c4942a}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32\...\{94267bd0-fa8a-4aa4-925d-ec3e0d130fba}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{e46f527f-1e64-4554-abc1-115f3429c25c}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{b96dabae-c7ef-45f2-95ab-1a4d917262a3}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{D800D836-DE15-4B00-8273-521F022CD837}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{d00daf18-4c78-4fc6-bb05-376a06c79c48}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM\...\{B5E322FB-C191-463E-BDDD-4F22290EDFDB}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM-x32\...\{277875e0-972c-4705-b09c-ca5acf5b2f7c}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.03.45 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{2977b6c2-6523-42f4-8f52-bf4f7fc7a840}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{52400cff-4628-4ca3-a922-3767b198c1fd}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{243ceb39-3b77-43ab-9135-fddab4ac7caf}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{3dcded5b-10da-4d98-9c1f-c33d25288ebd}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM\...\{723B40A4-5BF2-4DC6-834A-2ADF75F3CF7E}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM-x32\...\{0ebcd5fb-7bf9-45b4-a0b6-0932d728e289}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.07.79 - ASUSTeK Computer Inc.)
AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.37 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{60d8d6b5-0ec5-420a-a407-a42e19346d46}) (Version: 1.0.37 - ASUS) Hidden
AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.03.79 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{880f3eb6-28fe-4c63-875f-c6fb491fc334}) (Version: 3.03.79 - ASUSTeK Computer Inc.)
Avant Browser (remove only) (HKLM-x32\...\AvantBrowser) (Version: 12.5.0.0 - Avant Force)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1085 - AB Team, d.o.o.)
Corsair AURA DRAM Component (HKLM\...\{376E0869-A4F1-4DC7-A1FD-EBF3AFFEB832}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
Corsair AURA DRAM Component (HKLM-x32\...\{8fce5ea9-d56f-4f89-a363-830eceb72c72}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
CrystalDiskInfo 7.0.4 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.4 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dynamic Application Loader Host Interface Service (HKLM\...\{BCBA926F-0E0A-4AB4-9498-7A8E78A83408}) (Version: 1.0.0.0 - Intel Corporation) Hidden
ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.0.0 - ENE TECHNOLOGY INC.) Hidden
ENE RGB HAL (HKLM\...\{BBEB79B8-472B-44E6-B0BA-157909EFE7D6}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{e0fa04a3-0593-40a3-8eea-c45cf5d09062}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_ASM_HAL (HKLM\...\{CB19FBA3-7A4F-4D2A-A231-F580B5DCD203}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_ASM_HAL (HKLM-x32\...\{3532d794-73d7-42bd-af02-9f00623dd567}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{455E34DD-5F26-431E-B542-72F73A8FEED8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{24a265a5-9f90-4090-904f-5ed9fa4414b8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EZ CD Audio Converter (HKLM-x32\...\EZ CD Audio Converter) (Version: 8.2.2 - Poikosoft)
F-Secure SAFE (HKLM-x32\...\{9DEBA07D-5FCD-42F8-88F7-0232DC284B47}) (Version: 17.7 - F-Secure Corporation)
GALAX GAMER RGB (HKLM\...\{06A16AA8-BBA7-4362-962E-16651962D87C}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Hidden
GALAX GAMER RGB (HKLM-x32\...\{1257fdeb-ffa3-4e17-9d4b-189075ea3656}) (Version: 1.00.02 - Galaxy Microsystems Ltd.)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{BB9BB437-83CC-4497-AE89-911D61973784}) (Version: 6.5.1.330 - Intel Corporation) Hidden
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{dfe98c64-9135-41f4-a771-0a6cb80289af}) (Version: 6.5.1.330 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1937.12.0.1312 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{c4a581e8-a702-448c-80c7-4b6192985db2}) (Version: 10.1.18228.8176 - Intel(R) Corporation)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{c0c65c06-e79e-44b5-bd66-85099364afeb}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MSI APP Manager (HKLM-x32\...\{00F47104-12BA-4E58-A7E6-F456C1BA338E}}_is1) (Version: 1.0.0.32 - MSI)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 3.0.0.99 - MSI)
MSI DPC Latency Tuner (HKLM-x32\...\{1AAC56F3-3F60-47DB-BE6B-088F36ADFDC5}_is1) (Version: 1.0.0.38 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.15 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.65 - MSI)
MSI MysticLight (HKLM-x32\...\{93874B70-6C5E-446A-AF4D-E5AC776A0386}}_is1) (Version: 3.0.0.66 - MSI)
MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.43 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.28 - MSI)
MSI X Boost (HKLM-x32\...\{515143BB-7A11-4D85-B941-D520AAAA099C}_is1) (Version: 1.0.0.46 - MSI)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.5.0.0 - Duodian Technology Co. Ltd.)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.16.148 (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.16.148 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.338.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.19 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 442.19 - NVIDIA Corporation) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Patriot Viper RGB (HKLM\...\{E42E13B0-071E-49C1-B1CC-58198E82F302}) (Version: 1.00.08 - Patriot Memory) Hidden
Patriot Viper RGB (HKLM-x32\...\{4b7bfeff-ac47-46c1-aea6-4556f5f0e6bb}) (Version: 1.00.08 - Patriot Memory)
qBittorrent 4.1.9.1 (HKLM-x32\...\qBittorrent) (Version: 4.1.9.1 - The qBittorrent project)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.34.307.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8844.1 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.23.0 - Samsung Electronics Co., Ltd.)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 13.0.0.53 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.2.2558 - TeamViewer)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)

Packages:
=========
AdBlock -> C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-25] (BetaFish)
EdgeDevtoolsPlugin -> C:\Windows\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-11-09] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.7.199.0_x64__dt26b99r8h8gj [2020-01-02] (Realtek Semiconductor Corp)
Samsung Flow -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy [2020-01-30] (Samsung Electronics Co, Ltd.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0 [2020-01-30] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [F-Secure DataGuard Icon Overlay] -> {CA789262-D278-40F7-AC12-19C0395F9DD9} => C:\Program Files (x86)\F-Secure\SAFE\FsShellExtension64.dll [2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => C:\Program Files\EZ CD Audio Converter\ezcd64.dll [2018-11-28] (Poikosoft -> Poikosoft)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => C:\Program Files\EZ CD Audio Converter\ezcd64.dll [2018-11-28] (Poikosoft -> Poikosoft)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-13] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-12-07 10:24 - 2019-12-07 10:24 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2020-01-01 11:34 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\APP Manager\unrar.dll
2020-01-22 15:14 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\Live Update\unrar.dll
2020-01-01 11:34 - 2017-08-02 14:48 - 000237568 _____ () [File not signed] C:\Program Files (x86)\MSI\MysticLight\LEDControl.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2019-11-12 14:49 - 2020-01-16 15:01 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2019-11-05 14:33 - 2019-11-05 14:33 - 000209920 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\AacHal_x86.dll
2019-10-22 02:16 - 2019-10-22 02:16 - 000264704 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\SB_SMBUS_SDK.dll
2019-11-06 14:09 - 2019-11-06 14:09 - 000190976 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\AacHal_x86.dll
2019-11-25 14:44 - 2019-11-25 14:44 - 000176128 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_ASM_HAL\AacHal_x86.dll
2019-07-25 11:55 - 2019-07-25 11:55 - 000184832 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_M2_HAL\AacHal_x86.dll
2018-09-20 09:39 - 2018-09-20 09:39 - 000156672 _____ () [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\AacHal_x86.dll
2019-12-21 09:24 - 2019-12-21 09:24 - 000064512 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_frozenlist.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000050176 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_helpers.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000225792 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_http_parser.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000045056 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_http_writer.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_websocket.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\multidict\_multidict.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000073216 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\yarl\_quoting.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000231424 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\_yaml.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000048128 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_frozenlist.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000036864 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_helpers.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000216064 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_parser.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000032256 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_writer.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000022528 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_websocket.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\multidict\_multidict.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000061952 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\psutil\_psutil_windows.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000073216 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\yarl\_quoting.cp37-win32.pyd
2019-12-10 16:40 - 2019-12-10 16:40 - 002831360 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\LightingService\log4cxx.dll
2020-01-01 11:34 - 2018-04-03 15:22 - 000053248 _____ (MS) [File not signed] C:\Program Files (x86)\MSI\MysticLight\MsIo32.dll
2018-09-20 09:08 - 2018-09-20 09:08 - 000053760 _____ (MS) [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\MsIo32_Galax.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\SSLEAY32.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 003513344 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 054071296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-12-03 16:12 - 2019-12-03 16:12 - 000467456 _____ (TODO: <Company name>) [File not signed] C:\Program Files\ASUS\Aac_Keyboard\AacKbHal_x86.dll
2020-01-01 11:34 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\MysticLight\Lib\SDKDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\rewko\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\rewko\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-11-09 19:29 - 2019-11-09 19:28 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2019-12-30 10:48 - 2020-01-04 17:14 - 000000511 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 DESKTOP-QF3F7F4.mshome.net # 2025 1 4 2 16 14 29 103
192.168.137.91 Galaxy-A7-2018.mshome.net # 2020 1 6 11 16 14 29 103

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rewko\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [{6115B74A-F481-4715-B51F-7F5978E26C20}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{D531BAE0-5E73-4CC2-AE2F-7A4AB0C416D8}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{BAC5F3AA-EFD6-43BC-8A3B-6DA4968CC73E}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{2CB49B95-EE1B-423A-8DD4-9680E1D6A5FB}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{84CC4630-C137-41E7-8653-AED8C28C4A17}] => (Allow) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{A7B82843-BF0C-446B-9EB8-F9404093B804}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [{5E6809B5-E17F-4227-8BF1-56821853B798}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A40E82B2-C317-446E-9903-730A51BCF82C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{9356E3C2-9C16-440C-BAEF-92D374571DF7}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{2922C635-64C8-472B-BB35-91F0277FBF71}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{F909AC20-CFFF-4977-B952-BB207B6B4029}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DFD8BA8E-310D-444E-9862-5D8C11ADF220}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{54D7EB71-A3E2-41A1-BCB2-E519557D086B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8F943F30-7256-492E-A494-53791FA30229}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{07827EF2-5C19-4622-B66E-EA8A27ED91D2}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{B117FC1C-A434-4333-8A0D-DFE90A19CA05}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{09D6F9AE-95E1-4F59-9646-8D072A9B7F29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{89833A94-EB61-4C81-AB82-28C43B823A0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1F72C4B8-7690-460F-93C4-B2B483F8C377}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F7F77E03-08C9-421F-AECE-6C2E14B81FBC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{437D91B6-AC79-414D-99F7-9AD5528D90DE}] => (Allow) G:\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{A40069FE-EE6F-4B89-BD6D-5A3773334706}] => (Allow) G:\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{2CDE5D93-619A-48B1-97DF-E0AFE0ED1E04}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D0D26D84-1CA2-412C-9503-52119B5F134C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C10581A0-27C0-49C1-9DB6-6723C7FEF231}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{4E317ECE-E6E0-4A70-B478-F05550BEFD60}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{44990B40-A639-4496-B85A-159666556E7A}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{8363E8C6-65C4-4AC0-B1BF-DF46FE33E2F3}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{64B55CF8-4689-466E-A368-74D8BDC521C2}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{1867F314-3288-46D1-A0CC-84763AB5AA06}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{CEE6493D-7238-4E8B-B60B-5C353A49C9AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7930DBC3-62C9-4598-B1ED-9EA1047A2CF2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{85A32405-D95A-46CA-AA4C-9E9FC67846AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A83966F1-9B01-405B-9EAA-83D54ED4B263}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BF9BA3AA-B6DF-4F7B-AA03-0CF3DA5E8124}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AE192729-ACB2-463A-86A2-135535EE22E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4BEFF340-F053-4C77-91AD-786F26761EA2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5E3CF6BD-D833-4FC0-A363-33D5CD75C201}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{4337516C-0A0B-423A-BE7A-992C02FE4B27}C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{DEE386FA-E6D1-4A3E-9B88-FC0D9BE4C748}C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{70D81B6A-8546-48A5-85C9-71E30D0FCEA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{9DB2E6D6-7DC7-4FC7-B04D-9569F80D685E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{7700146B-8902-4240-90D5-618006DB4F97}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grove flowers\nw.exe (The NW.js Community) [File not signed]
FirewallRules: [{84EC79F5-2E05-4023-BB18-A03E61795306}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grove flowers\nw.exe (The NW.js Community) [File not signed]
FirewallRules: [{92E80C83-10EB-415C-B204-F3548B7D47B3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3B726F82-A32D-48BD-8BB3-B69DB2F4FC53}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{FF272929-B573-4835-AB36-DF9C7F92B3B1}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{66D00699-62F6-4C41-9A2D-CB6308D3CC2A}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{439B30A1-AE8E-4D35-B7BA-52BC60B2129B}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{629FEA37-04AB-4D61-8B79-404F9C81B3A5}] => (Allow) LPort=26820
FirewallRules: [{70EDC50B-E1E6-48BA-9155-BBAFDF3E72CE}] => (Allow) LPort=26822

==================== Restore Points =========================

07-02-2020 14:30:49 Naplánovaný kontrolní bod
11-02-2020 17:50:57 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/13/2020 03:28:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=6

Error: (02/13/2020 03:28:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (02/13/2020 03:28:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (02/13/2020 12:33:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: dwm.exe, verze: 10.0.18362.387, časové razítko: 0x8e064b77
Název chybujícího modulu: dwmcore.dll, verze: 10.0.18362.387, časové razítko: 0x6906a3c8
Kód výjimky: 0xc0000602
Posun chyby: 0x000000000012afd9
ID chybujícího procesu: 0x2b60
Čas spuštění chybující aplikace: 0x01d5e261628edecd
Cesta k chybující aplikaci: C:\WINDOWS\System32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\dwmcore.dll
ID zprávy: 37204afa-02df-4f02-9f4f-7410609e8f73
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/13/2020 12:33:15 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6952,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/13/2020 12:22:12 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (18392,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/13/2020 12:13:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=5

Error: (02/13/2020 12:13:05 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 25776; požadovaná velikost: 34328.


System errors:
=============
Error: (02/13/2020 12:33:21 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QF3F7F4)
Description: Server Microsoft.OneConnect_5.1911.3171.0_x64__8wekyb3d8bbwe!App.AppXe8pdgw5syxe8pgccbk3mcn5hanwamr0e.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/13/2020 12:13:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (02/13/2020 12:13:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).

Error: (02/13/2020 12:12:44 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_4e728d5 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell

Error: (02/13/2020 12:12:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_4e728d5 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (02/13/2020 12:12:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Uživatelská služba pro GameDVR a vysílání her_4e728d5 bylo dosaženo časového limitu (30000 ms).

Error: (02/10/2020 09:21:21 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_abfb358 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell

Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_abfb358 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.


Windows Defender:
===================================
Date: 2019-12-23 07:57:54.238
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {540CC8B3-58C8-4013-AAAC-D894F91AA2B3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-12-21 21:32:37.481
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Zpevdo.A
ID: 2147727143
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2019-12-21 21:26:34.705
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2019-12-21 21:26:29.777
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2019-12-21 21:26:17.772
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

CodeIntegrity:
===================================

Date: 2020-02-13 15:31:10.161
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-02-13 15:31:10.056
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-02-13 15:31:09.950
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-02-13 15:30:56.541
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-02-13 15:30:51.995
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-02-13 15:30:51.908
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-02-13 15:30:51.815
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-02-13 15:30:41.400
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 2.A0 08/24/2019
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i7-8700 CPU @ 3.20GHz
Percentage of memory in use: 47%
Total physical RAM: 16326.21 MB
Available physical RAM: 8490.54 MB
Total Virtual: 18758.21 MB
Available Virtual: 7376.93 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.87 GB) (Free:28.45 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1862.98 GB) (Free:0.53 GB) NTFS
Drive e: () (Fixed) (Total:1667.7 GB) (Free:51.33 GB) NTFS
Drive g: () (Fixed) (Total:195.31 GB) (Free:77.23 GB) NTFS
Drive h: (2.5 PALCE) (Fixed) (Total:931.51 GB) (Free:168.77 GB) NTFS

\\?\Volume{e580499b-1762-4e4f-a029-b359879fab72}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.07 GB) NTFS
\\?\Volume{f11ed521-731f-443b-9d0c-4ee98bdd3774}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==================== End of Addition.txt =======================

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [GalaxyClient] => [X]
Task: {26C40013-35A5-4A63-ABB1-46CF48181851} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {ABC08BA4-A1D6-4F2A-A72C-8578C943293E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\Users\rewko\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\rewko\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{07827EF2-5C19-4622-B66E-EA8A27ED91D2}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{B117FC1C-A434-4333-8A0D-DFE90A19CA05}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe
C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe

EmptyTemp:
End

Uložte do C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by rewko (13-02-2020 16:45:46) Run:2
Running from C:\Users\rewko\Downloads
Loaded Profiles: rewko (Available Profiles: rewko)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [GalaxyClient] => [X]
Task: {26C40013-35A5-4A63-ABB1-46CF48181851} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {ABC08BA4-A1D6-4F2A-A72C-8578C943293E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\Users\rewko\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\rewko\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{07827EF2-5C19-4622-B66E-EA8A27ED91D2}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{B117FC1C-A434-4333-8A0D-DFE90A19CA05}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe
C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{26C40013-35A5-4A63-ABB1-46CF48181851}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABC08BA4-A1D6-4F2A-A72C-8578C943293E}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
"HKU\S-1-5-21-2545330955-1925899768-253270718-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
"C:\Users\rewko\Data aplikací" => ":6699d3ee8dd9cf775caae782c8f44f03" ADS not found.
"C:\Users\rewko\AppData\Roaming" => ":6699d3ee8dd9cf775caae782c8f44f03" ADS not found.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\OpenSSH-Server-In-TCP" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{07827EF2-5C19-4622-B66E-EA8A27ED91D2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B117FC1C-A434-4333-8A0D-DFE90A19CA05}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}" => not found
"C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe" => not found
"C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11714982 B
Java, Flash, Steam htmlcache => 12848067 B
Windows/system/drivers => 0 B
Edge => 28809969 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4984 B
NetworkService => 4984 B
rewko => 1240840 B

RecycleBin => 0 B
EmptyTemp: => 59.6 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:46:09 ====

OK. Nastala nějaká změna?

Ano je připojení rychlejší i prohlížeč jedné co je divně ,že po restartu když zapnu prohlížeč z uloženou záložkou na toto fórum tak mi to hlásil antivirus ,že na stránkách je trojan.

Dejte si tuto stránku v antiviru do vyjímek. Tady žádný virus nemáme a nevím, proč to hlásí. Asi nějaká paranoia to AV.